pwn 0.5.347 → 0.5.349

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (7) hide show
  1. checksums.yaml +4 -4
  2. data/README.md +3 -3
  3. data/bin/pwn_burp_suite_pro_active_scan +1 -0
  4. data/lib/pwn/plugins/burp_suite.rb +7 -2
  5. data/lib/pwn/plugins/open_api.rb +2 -3
  6. data/lib/pwn/version.rb +1 -1
  7. metadata +1 -1
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 4904a3ab143208330e103303af2d96d37aa4b87f96971226233379c3a38032e4
4
- data.tar.gz: c6cf2214ec3f527650d2ef680f6e84aa23245e5e08a8d9284a955df0cb7aeb92
3
+ metadata.gz: 44787455b2e00a8fa93b19c8c90822b8555adc8291e3f45126cc424bea5e6549
4
+ data.tar.gz: 7e3898ab30e50162b79e78d16525760f2a51b8e6b2f20b9f6231c77208b9bf50
5
5
  SHA512:
6
- metadata.gz: 275f814664786c2d9f34e55ced00af91cfd687bb5e51cfcc714f41b1a285a969f4f0fb20a9467fb45d747d9799f2dba6e9d861d052611b99931a1480ebd85359
7
- data.tar.gz: 4b17d44690ead6e1b40be536802e210918d99b73d62be6030f3d661129c69bb651a83f4900265039b738477339473f5f4ae8b4b3d97e385c2c8c2195f23d974b
6
+ metadata.gz: 6af7f2ed0880f11453da46b67d0cb9bdb4e3e55422c784d4530e174d97ad5f925247d29cfd81deb41c2251e1281ba86e7b2602bbf77a5097a1df80d4afd33bcd
7
+ data.tar.gz: ba49fc940c50324702a1ad62a487ea9cc084a2bedac19060bac2070b91b5ed8c32867cf09af494a731370241c540a6f5cdfa209505dc698475bb352e84ec8f38
data/README.md CHANGED
@@ -37,7 +37,7 @@ $ cd /opt/pwn
37
37
  $ ./install.sh
38
38
  $ ./install.sh ruby-gem
39
39
  $ pwn
40
- pwn[v0.5.347]:001 >>> PWN.help
40
+ pwn[v0.5.349]:001 >>> PWN.help
41
41
  ```
42
42
 
43
43
  [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.4.4@pwn
52
52
  $ gem uninstall --all --executables pwn
53
53
  $ gem install --verbose pwn
54
54
  $ pwn
55
- pwn[v0.5.347]:001 >>> PWN.help
55
+ pwn[v0.5.349]:001 >>> PWN.help
56
56
  ```
57
57
 
58
58
  If you're using a multi-user install of RVM do:
@@ -62,7 +62,7 @@ $ rvm use ruby-3.4.4@pwn
62
62
  $ rvmsudo gem uninstall --all --executables pwn
63
63
  $ rvmsudo gem install --verbose pwn
64
64
  $ pwn
65
- pwn[v0.5.347]:001 >>> PWN.help
65
+ pwn[v0.5.349]:001 >>> PWN.help
66
66
  ```
67
67
 
68
68
  PWN periodically upgrades to the latest version of Ruby which is reflected in `/opt/pwn/.ruby-version`. The easiest way to upgrade to the latest version of Ruby from a previous PWN installation is to run the following script:
data/bin/pwn_burp_suite_pro_active_scan CHANGED
@@ -106,6 +106,7 @@ begin
106
106
  duration = 9
107
107
  print "Waiting #{duration} seconds prior to kicking off active scan..."
108
108
  sleep duration # Sleep for now so everything loads the way we expect - blech.
109
+ print "\n"
109
110
 
110
111
  PWN::Plugins::BurpSuite.invoke_active_scan(burp_obj: burp_obj, target_url: in_scope)
111
112
 
data/lib/pwn/plugins/burp_suite.rb CHANGED
@@ -167,7 +167,7 @@ module PWN
167
167
  end
168
168
 
169
169
  # Supported Method Parameters::
170
- # json_in_scope = PWN::Plugins::BurpSuite.spider(
170
+ # json_spider = PWN::Plugins::BurpSuite.spider(
171
171
  # burp_obj: 'required - burp_obj returned by #start method',
172
172
  # target_url: 'required - target url to add to crawl / spider'
173
173
  # )
@@ -683,7 +683,7 @@ module PWN
683
683
  )
684
684
  puts " => #{resp.code}"
685
685
  rescue RestClient::ExceptionWithResponse => e
686
- puts " => #{e.response.code}"
686
+ puts " => #{e.response.code}" if e.respond_to?(:response) && e.response
687
687
  next
688
688
  end
689
689
 
@@ -937,6 +937,11 @@ module PWN
937
937
  target_url: 'required - target url to add to scope'
938
938
  )
939
939
 
940
+ json_spider = #{self}.spider(
941
+ burp_obj: 'required - burp_obj returned by #start method',
942
+ target_url: 'required - target url to spider in scope'
943
+ )
944
+
940
945
  #{self}.enable_proxy(
941
946
  burp_obj: 'required - burp_obj returned by #start method'
942
947
  )
data/lib/pwn/plugins/open_api.rb CHANGED
@@ -50,7 +50,7 @@ module PWN
50
50
  begin
51
51
  case File.extname(path).downcase
52
52
  when '.yaml', '.yml'
53
- specs[path] = YAML.load_file(path, permitted_classes: [Symbol, Date, Time])
53
+ specs[path] = YAML.safe_load_file(path, permitted_classes: [Symbol, Date, Time], aliases: true)
54
54
  when '.json'
55
55
  specs[path] = JSON.parse(File.read(path))
56
56
  else
@@ -697,11 +697,10 @@ module PWN
697
697
 
698
698
  case File.extname(ref_path).downcase
699
699
  when '.yaml', '.yml'
700
- specs[ref_path] = YAML.load_file(ref_path, permitted_classes: [Symbol, Date, Time])
700
+ specs[ref_path] = YAML.safe_load_file(ref_path, permitted_classes: [Symbol, Date, Time], aliases: true)
701
701
  spec_paths << ref_path unless spec_paths.include?(ref_path)
702
702
  when '.json'
703
703
  specs[ref_path] = JSON.parse(File.read(ref_path))
704
- spec_paths << ref_path unless spec_paths.include?(ref_path)
705
704
  else
706
705
  log("Unsupported file type for $ref: #{ref_path} from #{referencing_file}", debug: debug)
707
706
  return value
data/lib/pwn/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  module PWN
4
- VERSION = '0.5.347'
4
+ VERSION = '0.5.349'
5
5
  end
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: pwn
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.5.347
4
+ version: 0.5.349
5
5
  platform: ruby
6
6
  authors:
7
7
  - 0day Inc.